Publié: 13 avril 2013 dans Networking, Security
Tags:bgp, DNS, Internet, RIR
En faisant des recherches sur l’Anycast, je suis tombé par hasard sur un article réalisé par l’Agence Nationale de la Sécurité des Systèmes d’Information (ANSSI) et par l’Association Française pour le Nommage Internet en Coopération (AFNIC) qui a dressé un état des lieux de l’Internet français en 2011. Cette étude s’est focalisée sur le BGP et le DNS puisque ce sont les deux éléments clés de l’accessibilité et la résilience de l’Internet d’un pays.
L’article est accessible ici.
Publié: 16 février 2013 dans Uncategorized
Tags:Screen, Tools, Windows
Like most peaples, I need to take screenshots. Under MS Windows systems I use Lightscreen. It’s very light and do the job nicely. A portable version is available also. After the screenshot is took, it’s stored in the clipboard and on the hard drive. You can select a zone of the screen, a window or all the screen. Try it !
Publié: 16 février 2013 dans HA, Networking
Tags:Cisco, IPSec, VPN, VRRP
The first thing is that VRRP, compared to HSRP, is an open standard protocol for router redundancy. But when we talk about routers we think Cisco, Nortel or Juniper…
I used VRRP to implement high availabality of Linux routers (a failover cluster). The solution was really reliable. But when I was thinking to enlarge the experience to Cisco routers I found my self asking this question: Can I use VRRP to allow high availability of IPsec Lan-To-Lan VPNs ?
After some reading, the answer from Cisco is Yes but with the use of HSRP and not VRRP, here’s a link from Cisco discussing the subject : http://www.cisco.com/en/US/docs/ios/12_1/12_1e9/feature/guide/ft_ipsha.html
This worked on a lab with HSRP, unfortunatly VRRP did not. My question to Cisco : Why VRRP based features are not more developped on Cisco routers ?
In the network we manage there are Riverbed Steelhead equipments. Unfortunatly, these machines have many hard drives issues. May be this is normal, cause of the many read/write events on the hard drive.
Every month I need to call the TAC to ask them to change at least 2 hard drives. You agree, in a production network, this is not optimal.
When a hard drive on a Riverbed SteelHead machine is in a degraded state, you have to gatter these information before you call the TAC :
- The serial number of the machine : show info
- a sysdump : debug generate dump
- show raid err-mess
- show raid info
- show raid conf
- show raid diagram
- show raid physical
and then you need to plan for changing the hard drive. Be careful, when doing this you may get a small interruption of the network connections, the optimisation service may stop and start. I suggest to plan this in a maintenance window and inform the users when you begin/finish the operation.
You can try to remove the hard drive and insert it before changing it. Normally you don’t need to shutdown the machine unless the TAC ask you to do.
Some times, when you have this issue, you can’t log in the managment interfaces (HTTP/HTTPS/SSH/Serial Console), you need to reboot the machine to get in again.
Publié: 27 février 2010 dans Uncategorized
Long time I didn’t post… sorry for that
I began a new job as a Network engineer in a motorway company. The job is great and interesting, peaple are nice. There are many networks for differents needs, so many thing to understand and learn.
Hope you enjoy the new theme, if not let me know.
Publié: 27 octobre 2009 dans Networking
As I’m free (no job yet), I’m preparing myself for the Cisco BSCI exam for the CCNP… Say me good luck
One of my (may be) future colleague said me that it’s more interesting to have a Juniper certification… what’s your opinion ? mine : if I had enough time I will pass the two